CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-3292

The installer in NetApp OnCommand Workflow Automation before 2.2.1P1 and 3.x before 3.0P1 sets up the Java Debugging Wire Protocol (JDWP) service, which allows remote attackers to execute arbitrary code via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.301

EPSS Ranking 96.4%

CVSS Severity

CVSS v2 Score 10.0

References

http://www.securityfocus.com/bid/74891
https://kb.netapp.com/support/index?page=content&id=9010037
http://www.securityfocus.com/bid/74891
https://kb.netapp.com/support/index?page=content&id=9010037

Products affected by CVE-2015-3292

Netapp » Oncommand Workflow Automation » Version: N/A

cpe:2.3:a:netapp:oncommand_workflow_automation:-
Netapp » Oncommand Workflow Automation » Version: 2.2.1

cpe:2.3:a:netapp:oncommand_workflow_automation:2.2.1
Netapp » Oncommand Workflow Automation » Version: 3.0

cpe:2.3:a:netapp:oncommand_workflow_automation:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-3292

Products

Pricing

Contact Us